Securing a Linux environment begins with the workstation. Whether locking down a personal machine or securing an enterprise system, sound security policy begins with the individual computer. A computer network is only as secure as its weakest node.
[15] Since system BIOSes differ between manufacturers, some may not support password protection of either type, while others may support one type but not the other.
[16] GRUB also accepts unencrypted passwords, but it is recommended that an MD5 hash be used for added security.
[17] This access is still subject to the restrictions imposed by SELinux, if it is enabled.